Marriott International - Salem, OR
posted 4 months ago
This position will be part of the Cloud Security Engineering Team within the Global Information Security organization at Marriott International. The security engineer will be responsible for designing and building security capabilities in a multi-cloud environment, as well as building automation for cloud security controls to enhance the cloud security posture. This role will serve as a key engineering and supporting resource for the cloud security engineering program, ensuring that security measures are integrated into the cloud infrastructure effectively and efficiently. The security engineer will provide Cloud Security Governance and Optimization services to technical teams, advising on security best practices and guiding development and infrastructure teams in adopting and enforcing security and access policies that align with the business's security needs. This includes conducting vulnerability assessments of cloud assets, delivering remediation recommendations, and providing knowledgeable assistance in resolving identified vulnerabilities. The engineer will also be responsible for improving the accessibility of security through automation and continuous integration pipelines, which involves detecting and fixing vulnerabilities and identifying potential attacks. In addition to these responsibilities, the security engineer will provide subject matter expertise to the Security Engineering and Operations teams, ensuring the safeguarding of design, build, deploy, and maintenance of products and services in the cloud environment. The role requires participation in the evaluation and selection of security service products, as well as supporting governance based on best practices and facilitating proper alignment to projects and major initiatives. The engineer will also analyze the current environment to detect critical deficiencies and recommend solutions for improvement, while keeping up-to-date with technology industry and market trends to assess their potential impact on security services architecture.